×
Register Here to Apply for Jobs or Post Jobs. X

Systems Administrator, Endpoint Configuration and Patch Management

Job in Pittsburgh, Allegheny County, Pennsylvania, 15201, USA
Listing for: Robert Morris University
Full Time position
Listed on 2026-05-21
Job specializations:
  • IT/Tech
    Cybersecurity, IT Support, Systems Administrator, Systems Engineer
Job Description & How to Apply Below
Position Department:
Enterprise Infrastructure

Position Type:
Staff Full-Time

Overview:

The Systems Administrator, Endpoint Configuration and Patch Management, is responsible for the configuration, deployment, patching, and security compliance of University-owned endpoints across Windows and macOS. This is a hands-on position with responsibility for imaging and provisioning new devices (Microsoft Intune / Windows Autopilot, Jamf Pro / Apple Business Manager), software distribution and patch deployment across endpoints, including lab environments, and servers, configuration baseline enforcement, and partnering with Information Security on vulnerability remediation driven by Tenable.io

findings and Microsoft Defender for Endpoint posture. The role ensures compliance with the University's Information Technology patch management and endpoint security policies across all University-owned computer systems and devices, and supports identity-integrated device management.

Responsibilities:

* Patch and software distribution management across endpoints, servers, and infrastructure using Microsoft Intune, Microsoft Configuration Manager (SCCM), WSUS, and Jamf Pro, including third-party application patching. Develop Power Shell, Bash, and shell scripts to automate configuration management, software packaging, and patch deployment.

* Imaging, provisioning, and deployment of Windows and macOS endpoints, including Windows Autopilot (User-Driven and Pre-Provisioning / White Glove), SCCM task sequences for lab environments, and Jamf Pro Automated Device Enrollment via Apple Business Manager. Maintain provisioning workflows, Enrollment Status Page configuration, and OS upgrade pipelines.

* Vulnerability management and remediation in partnership with Information Security: triage Tenable.io scan findings, prioritize remediation, drive resolution through patching, configuration changes, or compensating controls.

* Configuration management and endpoint security baseline enforcement through Microsoft Intune, Group Policy, and Jamf Pro configuration profiles. Manage Microsoft Defender for Endpoint policy and partner with Information Security on Microsoft Sentinel detection content

* Maintain accurate inventory of network-connected devices (PCs, Macs, servers, switches, routers, printers, telecommunications, building controls, etc.) across multiple tools. Ensure patch and configuration schedules are followed, identify and report deviations,

* Perform routine system and configuration backups and monitor daily job completion. Participate in business continuity and disaster recovery infrastructure testing.

* Other duties as assigned.

Minimum Qualifications:

* Bachelor's Degree in Computer Science, Information Science or a related field preferred.

* 3-5 years of professional experience deploying, patching, and managing endpoints across Windows and macOS using modern endpoint management platforms is preferred.

* Required:

* Hands-on experience with Microsoft Intune (Endpoint Manager) and Microsoft Configuration Manager (SCCM), including co-management scenarios.

* Hands-on experience with Windows Autopilot provisioning.

* Working knowledge of Microsoft Entra  (formerly Azure AD), including device join states (Entra-joined, hybrid-joined), Conditional Access basics, and dynamic device groups.

* Experience with Microsoft Defender for Endpoint policy management and posture reporting.

* Working knowledge of Microsoft Sentinel for investigation and reporting.

* Experience with vulnerability management platforms such as Tenable.io, including driving remediation workflows from scan results.

* Experience with Power Shell, Bash/Zsh, and scripting tools to automate endpoint configuration, application packaging, and patch deployment.

* Working knowledge of Group Policy (GPO) and modern management equivalents.

* Working knowledge of TCP/IP networking topology, protocols, and services (TCP/UDP, DNS, DHCP, certificate-based authentication, etc.).

* Demonstrated ability to partner with Information Security and Identity teams to translate policy and vulnerability findings into deployable endpoint configurations.

* Preferred:

* Experience with backup/recovery…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary